CVE-2021-34596

EPSS 0.24%
Veröffentlicht 26.10.2021 10:15:08
Zuletzt bearbeitet 15.08.2025 20:24:15
Quelle info@cert.vde.com
Teams Watchlist Login
Unerledigt Login

A crafted request may cause a read access to an uninitialized pointer in CODESYS V2 Runtime Toolkit 32 Bit full and PLCWinNT prior to versions V2.4.7.56, resulting in a denial-of-service condition.

Betroffene Produkte Warnungen 0 Metriken 4 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Wago ≫ 750-823 Firmware Version < fw10

Wago ≫ 750-823 Version-

Wago ≫ 750-829 Firmware Version < fw17

Wago ≫ 750-829 Version-

Wago ≫ 750-831 Firmware Version < fw17

Wago ≫ 750-831 Version-

Wago ≫ 750-832 Firmware Version < fw10

Wago ≫ 750-832 Version-

Wago ≫ 750-852 Firmware Version < fw17

Wago ≫ 750-852 Version-

Wago ≫ 750-862 Firmware Version < fw10

Wago ≫ 750-862 Version-

Wago ≫ 750-880 Firmware Version < fw17

Wago ≫ 750-880 Version-

Wago ≫ 750-881 Firmware Version < fw17

Wago ≫ 750-881 Version-

Wago ≫ 750-882 Firmware Version < fw17

Wago ≫ 750-882 Version-

Wago ≫ 750-885 Firmware Version < fw17

Wago ≫ 750-885 Version-

Wago ≫ 750-889 Firmware Version < fw17

Wago ≫ 750-889 Version-

Wago ≫ 750-890 Firmware Version < fw10

Wago ≫ 750-890 Version-

Wago ≫ 750-891 Firmware Version < fw10

Wago ≫ 750-891 Version-

Wago ≫ 750-893 Firmware Version < fw10

Wago ≫ 750-893 Version-

Wago ≫ 750-8202 Firmware Version < fw20

Wago ≫ 750-8202 Version-

Wago ≫ 750-8203 Firmware Version < fw20

Wago ≫ 750-8203 Version-

Wago ≫ 750-8204 Firmware Version < fw20

Wago ≫ 750-8204 Version-

Wago ≫ 750-8206 Firmware Version < fw20

Wago ≫ 750-8206 Version-

Wago ≫ 750-8207 Firmware Version < fw20

Wago ≫ 750-8207 Version-

Wago ≫ 750-8208 Firmware Version < fw20

Wago ≫ 750-8208 Version-

Wago ≫ 750-8210 Firmware Version < fw20

Wago ≫ 750-8210 Version-

Wago ≫ 750-8211 Firmware Version < fw20

Wago ≫ 750-8211 Version-

Wago ≫ 750-8212 Firmware Version < fw20

Wago ≫ 750-8212 Version-

Wago ≫ 750-8213 Firmware Version < fw20

Wago ≫ 750-8213 Version-

Wago ≫ 750-8214 Firmware Version < fw20

Wago ≫ 750-8214 Version-

Wago ≫ 750-8216 Firmware Version < fw20

Wago ≫ 750-8216 Version-

Wago ≫ 750-8217 Firmware Version < fw20

Wago ≫ 750-8217 Version-

Codesys ≫ Codesys Version < 1.1.9.22

Codesys ≫ Plcwinnt Version < 2.4.7.56

Codesys ≫ Runtime Toolkit HwPlatformx86 Version < 2.4.7.56

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.24%	0.466

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov	4	8	2.9	AV:N/AC:L/Au:S/C:N/I:N/A:P
info@cert.vde.com	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-824 Access of Uninitialized Pointer

The product accesses or uses a pointer that has not been initialized.

https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=16878&token=e5644ec405590e66aefa62304cb8632df9fc9e9c&download=

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-34596

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-34596

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-34596

EUVD